weak ciphers in SSHD
Posted: Tue Feb 26, 2019 1:13 pm
We have been notified that we have weak ciphers in SSHD on our Nagios host.
The remedy is to disable the arcfour, arcfour128 and arcfour256 ciphers and a line in /etc/ssh/ssh_config must also be edited to remove the ability for the ssh client on the host to use the weak ciphers to connect to another host.
??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
Will this break any of our agents? NRPE? Break any of the monitoring? Issues, concerns?
Thanks!
????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
The remedy is to disable the arcfour, arcfour128 and arcfour256 ciphers and a line in /etc/ssh/ssh_config must also be edited to remove the ability for the ssh client on the host to use the weak ciphers to connect to another host.
??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
Will this break any of our agents? NRPE? Break any of the monitoring? Issues, concerns?
Thanks!
????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????